Consumer Credit API

A new and modern Rest API-service to access Swedish consumer credit reports and execute strategies for consumer credit decisions.

Conditions of usage

Customer agreement

In order to use UC’s Web Services a valid customer agreement is required whereby you obtain a customer number and password. Contact UC for inquiries.

Legitimate need

Anyone who requests a consumer credit report, is required to have a legitimate need for it (The Swedish Credit Information Act (1973:1173)). This means that the person in question must have or be in the process of entering a credit agreement, or that the questioner has other reasons to make a financial risk assessment of the individual in question.

Permission

There are three permissions that relates to the usage of the API. To be able to use some features of the API the user needs to have these permissions set:

  • credit report permission to use the /creditReport endpoint
  • credit decision permission to use the /creditDecision endpoint
  • consumer recheck permission to use the parameter 'checkChangesFrom' in /creditDecision endpoint

In addition to these three there are also permissions set on the customer for what data can be accessed in the reports and decisions, for example credit commitments, student loans and misuse remarks. And also what strategies can be used for the credit decision.

Authentication

OAuth2

The application uses the OAuth2 authentication flow, but due to restrictions in your browser, you cannot directly use it from Swagger. Instead we recommend you to generate a Bearer token manually using instructions below.

Bearer token

Get an access_token for your machine user and apply it as authorization header in API requests.

Authorization: Bearer <access_token>

Get access_token for production environment

curl -X POST 'https://login.enento.com/am/oauth2/access_token'
--header 'Content-Type: application/x-www-form-urlencoded'
--data 'grant_type=password'
--data 'username=<YOUR_PRODUCTION_CLIENT_ID>'
--data 'password=<YOUR_PRODUCTION_CLIENT_SECRET>'
--data 'client_id=m2m_authentication_client'
--data 'client_secret='

Get access_token for Sandbox and AT environment

curl -X POST 'https://at-login.enento.com/am/oauth2/access_token' \
--header 'Content-Type: application/x-www-form-urlencoded' \
--data 'grant_type=password' \
--data 'username=<YOUR_TEST_CLIENT_ID>' \
--data 'password=<YOUR_TEST_CLIENT_SECRET>' \
--data 'client_id=m2m_authentication_client' \
--data 'client_secret='
enento.com
asiakastieto.fi
uc.se
allabolag.se
proff.no proff.dk proff.se